$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/D63D48DE604F11F0B5D8E73CC4F9AE02.roa File: D63D48DE604F11F0B5D8E73CC4F9AE02.roa (raw, json) Hash identifier: QfOLWdJ3P41WbgaABeuC3OluZff7oMV/GJPRbloorX8= Subject key identifier: DB:DC:F1:61:A8:29:16:C6:C8:F5:02:39:F4:45:87:8B:B9:20:4B:10 Certificate issuer: /CN=A91FE769/serialNumber=14E172EBE9ED9C3104D54F11AA976223EB376907 Certificate serial: 02 Authority key identifier: 14:E1:72:EB:E9:ED:9C:31:04:D5:4F:11:AA:97:62:23:EB:37:69:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOFy6-ntnDEE1U8RqpdiI-s3aQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/D63D48DE604F11F0B5D8E73CC4F9AE02.roa Signing time: Mon 14 Jul 2025 01:14:06 +0000 ROA not before: Mon 14 Jul 2025 01:14:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136254 IP address blocks: 103.153.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/FOFy6-ntnDEE1U8RqpdiI-s3aQc.crl rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/FOFy6-ntnDEE1U8RqpdiI-s3aQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOFy6-ntnDEE1U8RqpdiI-s3aQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE769, serialNumber=14E172EBE9ED9C3104D54F11AA976223EB376907 Validity Not Before: Jul 14 01:14:06 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=687459de-c695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b5:27:b0:d3:5f:d3:ae:d7:45:4c:43:04:37: e6:f2:97:ff:c3:c0:da:7b:fa:9e:9b:07:c6:5c:69: fe:2f:38:7d:9e:48:aa:80:d6:65:45:43:68:04:1f: c2:e1:f6:89:3c:64:33:3d:18:92:57:e3:2a:c3:d1: 7f:6c:08:11:97:b2:a4:75:ae:16:2e:c6:f3:28:73: 70:e8:d5:c5:b9:36:34:d0:ac:60:5d:2c:bd:9a:09: e0:20:c3:f2:e8:b5:a3:e9:81:17:2b:f4:ee:f9:8a: e3:ce:2e:94:d6:ec:e8:12:3f:49:f2:a3:07:e0:e8: 8c:75:61:a3:03:e1:b8:2d:36:d5:2b:0a:e6:0c:52: c6:17:f2:81:37:09:d8:77:51:28:9f:62:43:8c:c1: 78:57:01:8e:17:3f:e2:94:c6:8f:f4:fe:e1:8a:49: c1:28:fb:60:f7:e2:91:e8:f6:3a:1a:00:97:61:cb: 40:82:3d:26:d6:33:52:27:2b:b3:b6:81:b9:77:91: 64:0d:4a:1e:21:9d:d0:26:b9:ce:b1:2a:be:0a:d3: c1:a7:77:fb:35:b9:ac:10:14:38:79:24:14:d5:d5: 99:e2:2b:f8:25:69:b0:d6:f3:d1:9d:19:fb:3c:77: f4:a2:97:9b:11:b0:d3:2c:66:98:b7:ca:a6:36:01: 72:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DC:F1:61:A8:29:16:C6:C8:F5:02:39:F4:45:87:8B:B9:20:4B:10 X509v3 Authority Key Identifier: keyid:14:E1:72:EB:E9:ED:9C:31:04:D5:4F:11:AA:97:62:23:EB:37:69:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/FOFy6-ntnDEE1U8RqpdiI-s3aQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOFy6-ntnDEE1U8RqpdiI-s3aQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/D63D48DE604F11F0B5D8E73CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.59.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:a5:80:76:dc:69:f1:e5:0d:d8:b1:17:23:53:b5:80:7a:27: e2:cb:09:f2:bd:5d:47:86:c8:01:90:e5:fd:52:bf:ee:bf:16: 4b:de:e6:dc:45:4b:75:c6:8b:3a:3d:5b:31:e0:e0:4d:43:38: a2:9a:62:b8:2d:8b:85:5a:83:28:6c:ef:11:3a:97:55:ee:00: b1:65:18:85:46:93:e5:cf:32:a0:4f:a7:7e:75:61:1d:83:e1: d2:42:65:b3:04:61:7c:d1:64:a5:4f:2c:ed:5e:d1:a3:59:ac: c8:c0:00:cf:e0:7f:6d:ed:1b:00:90:11:ff:34:13:df:35:49: c9:ea:f2:96:fa:21:49:90:da:df:80:c9:90:9b:04:7a:ed:a0: a7:ba:68:fd:4c:e6:33:ee:02:b0:e7:8f:c5:d7:ff:73:f4:a7: e3:33:f8:99:c3:10:74:88:cd:71:49:cd:70:97:9d:f8:0c:e8: 2f:53:06:ed:6e:90:66:c7:a9:a5:fb:ba:e5:0f:7b:ef:9c:22: c3:73:94:22:c2:8e:19:78:93:f1:7f:83:99:1e:35:71:ed:52: 25:fc:bc:33:1b:53:e4:23:e5:c3:56:0b:37:65:2d:91:14:d8: 80:6d:4d:a0:aa:d1:38:e0:94:9e:4c:9c:de:f9:e2:74:8f:66: f9:38:99:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RTc2OTExMC8GA1UEBRMoMTRFMTcyRUJFOUVEOUMzMTA0RDU0RjExQUE5NzYyMjNF QjM3NjkwNzAeFw0yNTA3MTQwMTE0MDZaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzQ1OWRlLWM2OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbtSew01/TrtdFTEMEN+byl//DwNp7+p6bB8Zcaf4vOH2eSKqA1mVFQ2gEH8Lh 9ok8ZDM9GJJX4yrD0X9sCBGXsqR1rhYuxvMoc3Do1cW5NjTQrGBdLL2aCeAgw/Lo taPpgRcr9O75iuPOLpTW7OgSP0nyowfg6Ix1YaMD4bgtNtUrCuYMUsYX8oE3Cdh3 USifYkOMwXhXAY4XP+KUxo/0/uGKScEo+2D34pHo9joaAJdhy0CCPSbWM1InK7O2 gbl3kWQNSh4hndAmuc6xKr4K08Gnd/s1uawQFDh5JBTV1ZniK/glabDW89GdGfs8 d/Sil5sRsNMsZpi3yqY2AXKZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU29zxYagp FsbI9QI59EWHi7kgSxAwHwYDVR0jBBgwFoAUFOFy6+ntnDEE1U8RqpdiI+s3aQcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFNzY5L0M1RDZBNTdFNjA0 QzExRjA5MDgxNkExNUM0RjlBRTAyL0ZPRnk2LW50bkRFRTFVOFJxcGRpSS1zM2FR Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRk9GeTYtbnRuREVFMVU4UnFwZGlJLXMzYVFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTc2OS9DNUQ2QTU3RTYwNEMxMUYwOTA4MTZBMTVDNEY5QUUwMi9ENjNENDhERTYw NEYxMUYwQjVEOEU3M0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeZOzANBgkqhkiG9w0BAQsFAAOCAQEAjqWAdtxp8eUN2LEX I1O1gHon4ssJ8r1dR4bIAZDl/VK/7r8WS97m3EVLdcaLOj1bMeDgTUM4oppiuC2L hVqDKGzvETqXVe4AsWUYhUaT5c8yoE+nfnVhHYPh0kJlswRhfNFkpU8s7V7Ro1ms yMAAz+B/be0bAJAR/zQT3zVJyerylvohSZDa34DJkJsEeu2gp7po/UzmM+4CsOeP xdf/c/Sn4zP4mcMQdIjNcUnNcJed+AzoL1MG7W6QZseppfu65Q9775wiw3OUIsKO GXiT8X+DmR41ce1SJfy8MxtT5CPlw1YLN2UtkRTYgG1NoKrROOCUnkyc3vnidI9m +TiZGw== -----END CERTIFICATE-----Generated at Tue Aug 12 22:52:12 2025 by rpki-client